CPC H04L 63/0236 (2013.01) [H04L 63/0209 (2013.01); H04L 63/1441 (2013.01); H04L 63/168 (2013.01); H04L 63/20 (2013.01); H04W 12/08 (2013.01)] | 24 Claims |
1. A system, comprising:
a processor configured to:
monitor application layer signaling traffic on a service provider network at a security platform;
filter the application layer signaling traffic at the security platform based on a security policy, wherein an application layer signaling protocol is a Mobile Application Part (MAP) protocol, a CAMEL Application Part (CAP) protocol, or an Intelligent Network Application Part (INAP), and wherein the security platform is configured with a plurality of security policies based on an application layer signaling protocol to perform security policy enforcement based on the MAP, CAP, or INAP protocol; and
perform state and packet validation of an underlying Stream Control Transport Protocol (SCTP) while filtering MAP, CAP, or INAP protocol messages per subsystem number (SSN) or source/destination IP addresses; and
a memory coupled to the processor and configured to provide the processor with instructions.
|